Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/JnOCSgbNglhVSTdrNIvFnKUab-8.roa
File: JnOCSgbNglhVSTdrNIvFnKUab-8.roa (raw, json)
Hash identifier: LI7cDQWs8QUse4w5C/jn28ypRSfodw6mYw7ADYyM9oA=
Subject key identifier: 26:73:82:4A:06:CD:82:58:55:49:37:6B:34:8B:C5:9C:A5:1A:6F:EF
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 02174C37
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/JnOCSgbNglhVSTdrNIvFnKUab-8.roa
Signing time: Sat 01 Jan 2022 05:58:31 +0000
ROA not before: Sat 01 Jan 2022 05:58:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 81.199.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35081271 (0x2174c37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Jan 1 05:58:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2673824a06cd82585549376b348bc59ca51a6fef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:68:b5:92:2a:56:73:39:5a:50:6d:4e:56:b7:
81:1b:a6:9f:fc:0e:a9:0d:2f:a0:d5:87:2b:10:c6:
29:fe:d0:a5:95:94:0b:e8:4c:5f:38:e3:51:06:72:
3e:b4:91:56:24:7c:61:72:18:d5:38:b0:0a:a8:88:
cf:b7:69:3b:c1:bb:bd:d2:11:6e:54:5b:81:d9:a8:
9f:80:db:5f:3f:fd:14:c9:54:f4:45:10:3f:f1:96:
d2:cf:97:ce:ea:9a:65:2b:1e:08:a8:8a:3b:16:47:
60:b4:5a:6b:b2:0b:c9:94:cf:86:1c:b1:62:90:a4:
eb:f2:52:2e:fd:fd:f7:b0:7d:c8:6f:5d:1d:d3:56:
8f:7a:01:67:4d:02:f0:23:90:48:c5:c3:f6:0f:c5:
b3:51:49:4f:af:ea:f0:69:64:12:96:91:b8:f9:94:
d8:ab:a0:4c:18:f8:dc:5e:da:06:e5:4d:77:ef:41:
62:61:6a:84:e9:a2:9d:63:47:cb:72:14:e0:dc:6b:
90:0a:cf:69:e0:c9:0c:f6:97:61:5f:a5:04:1c:55:
a4:9e:ae:28:6d:36:87:3b:9f:5e:d2:3e:2a:b2:78:
16:0d:71:2f:2b:02:bc:13:32:c3:5f:91:42:fa:18:
1f:1f:07:42:99:59:19:f5:29:ec:ff:c0:d3:61:66:
1a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:73:82:4A:06:CD:82:58:55:49:37:6B:34:8B:C5:9C:A5:1A:6F:EF
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/JnOCSgbNglhVSTdrNIvFnKUab-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.28.0/22
Signature Algorithm: sha256WithRSAEncryption
33:90:aa:d8:cd:47:c4:4f:24:08:1b:bc:21:28:1a:45:46:ec:
35:05:8a:57:0f:d9:27:55:b6:0d:ab:43:80:c9:c0:b1:06:5c:
1c:77:cb:a9:97:26:57:00:86:30:7c:b0:d5:7f:de:72:71:47:
e9:a0:35:96:ec:37:ae:21:37:91:99:df:7f:d6:38:37:6f:d1:
51:d4:71:15:7f:05:fa:20:3a:f2:5a:ad:52:05:e6:86:fe:b6:
44:06:56:15:23:8b:ce:1f:45:e9:fc:87:71:df:da:4c:59:11:
5f:39:8f:2b:15:6d:51:d1:00:21:f0:94:fc:a3:b6:88:9f:89:
a2:e8:ed:94:e3:ad:74:22:16:1c:28:f1:05:e1:56:de:5f:74:
76:87:d8:14:ad:05:b0:4a:fb:8a:8d:08:64:dc:7c:80:e3:3f:
ac:06:bd:e5:bd:97:ca:99:db:5a:9f:4b:ed:1b:76:6a:25:64:
99:95:0a:6f:6e:d8:1b:c4:40:d3:92:b0:a9:e2:ab:af:a1:1d:
7d:55:94:4f:71:a2:8b:27:2e:cb:8d:f8:4d:06:ad:48:ac:b6:
17:71:49:f2:14:3a:3a:83:2b:ac:a7:b7:c9:09:f6:3a:4b:a8:
a2:84:b3:c3:4b:f5:6f:26:f3:08:7e:5d:6f:79:50:f6:dd:6e:
f6:e2:9c:8e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAhdMNzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MWRlMTI0ZTBmOGFkYjRlN2Q5NTc2Y2VhZTMyNWY2NjhkZDIyNGIxMB4XDTIyMDEw
MTA1NTgzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjY3MzgyNGEwNmNk
ODI1ODU1NDkzNzZiMzQ4YmM1OWNhNTFhNmZlZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANhotZIqVnM5WlBtTla3gRumn/wOqQ0voNWHKxDGKf7QpZWU
C+hMXzjjUQZyPrSRViR8YXIY1TiwCqiIz7dpO8G7vdIRblRbgdmon4DbXz/9FMlU
9EUQP/GW0s+XzuqaZSseCKiKOxZHYLRaa7ILyZTPhhyxYpCk6/JSLv3997B9yG9d
HdNWj3oBZ00C8COQSMXD9g/Fs1FJT6/q8GlkEpaRuPmU2KugTBj43F7aBuVNd+9B
YmFqhOminWNHy3IU4NxrkArPaeDJDPaXYV+lBBxVpJ6uKG02hzufXtI+KrJ4Fg1x
LysCvBMyw1+RQvoYHx8HQplZGfUp7P/A02FmGokCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQmc4JKBs2CWFVJN2s0i8WcpRpv7zAfBgNVHSMEGDAWgBTR3hJOD4rbTn2V
ds6uMl9mjdIksTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBkNFNUZy1LMjA1OWxYYk9yakpmWm8zU0pMRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2EvYWJlMTM0LTAwOTMtNDY1Mi05MDU3LTRmNGM5YjM0M2U5MC8x
L0puT0NTZ2JOZ2xoVlNUZHJOSXZGbktVYWItOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Ev
YWJlMTM0LTAwOTMtNDY1Mi05MDU3LTRmNGM5YjM0M2U5MC8xLzBkNFNUZy1LMjA1
OWxYYk9yakpmWm8zU0pMRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlHHHDANBgkqhkiG9w0BAQsFAAOC
AQEAM5Cq2M1HxE8kCBu8ISgaRUbsNQWKVw/ZJ1W2DatDgMnAsQZcHHfLqZcmVwCG
MHyw1X/ecnFH6aA1luw3riE3kZnff9Y4N2/RUdRxFX8F+iA68lqtUgXmhv62RAZW
FSOLzh9F6fyHcd/aTFkRXzmPKxVtUdEAIfCU/KO2iJ+JoujtlOOtdCIWHCjxBeFW
3l90dofYFK0FsEr7io0IZNx8gOM/rAa95b2XypnbWp9L7Rt2aiVkmZUKb27YG8RA
05KwqeKrr6EdfVWUT3Giiycuy434TQatSKy2F3FJ8hQ6OoMrrKe3yQn2OkuoooSz
w0v1bybzCH5db3lQ9t1u9uKcjg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:32 2023 by rpki-client on console-ams.rpki-client.org